Senior Principal Architect

Oracle Customer Success Services

Building on the mindset that "Who knows Oracle …. better than Oracle?" Oracle Customer Success Services assists customers with their requirements for some of the most cutting-edge applications and solutions by utilizing the strengths of more than two decades of expertise in developing mission-critical solutions for enterprise customers and combining it with cutting-edge technology to provide our customers' speed, flexibility, resiliency, and security to enable customers to optimize their investment, minimize risk, and achieve more. The business was established with an entrepreneurial mindset and supports a vibrant, imaginative, and highly varied workplace. We are free of obligations, so we'll need your help to turn it into a premier engineering hub that prioritizes quality.
 

Why?

Oracle Customer Success Services Engineering is responsible for designing, building, and managing cutting-edge solutions, services, and core platforms to support the managed cloud business including but not limited to OCI, Oracle SaaS, and Oracle Enterprise Applications.
This position is for the CSS Architecture Team, and we are searching for the finest and brightest technologists as we begin on the road of cloud-native digital transformation. We operate under a garage culture, rely on cutting-edge technology in our daily work, and provide a highly innovative, creative, and experimental work environment. We prefer to innovate and move quickly, putting a strong emphasis on scalability and robustness. We need your assistance to build a top-tier engineering team that has a significant influence.

What?

As a Senior Principal Architect - Cybersecurity within our team, you’ll lead and contribute towards shaping the strategy for Cybersecurity efforts in designing and building scalable, distributed, resilient services that provide or augment critical business capabilities involving security controls for the business which are consumed by Oracle Corporation and Oracle Customers. You will be responsible for the design and development of core security capabilities spanning across all security domains but not limited to Identity, Data, Network & Communications, Asset, Threat Management,Risk Management, Cyber Resilience & Software Security aligning Oracle Corporate Security (CSA) and Global Information Security (GIS) standards and policies in combination with industry standards such as NIST, COBIT, ISACA, SABSA & CIS for  ensuring they meet the needs of our clients and align with the company's strategic vision and business objectives.

This role requires a unique blend of strategic architectural thinking and deep technical expertise, including hands-on experience in deploying and operating security products and services. The ideal candidate will also possess a solid understanding of security frameworks, standards, and regulatory compliance mandates & extensive experience in designing security solutions involving building security capabilities and integrating controls into large scale products and services that operate at scale on hyperscalers for customers in both regulated and non-regulated environments. We strongly believe in ownership and challenging the status quo. We expect you to bring critical thinking and create long-term design impact while building solutions and products defining system integrations, and cross-cutting concerns. Being part of the architecture function also provides you with the unique ability to enforce standards, patterns and advisory that will be future-proof while building new services or products. As a thought leader, you will own and lead the complete SDLC from Architecture Design, Development, Test, Operational Readiness, and Platform SRE across the CSS CDO Engineering function.

As a Senior Principal Architect for Cybersecurity domain you will be playing a pivotal role in shaping up the Cybersecurity Strategy for the business, providing thought leadership impacting business and technology decisions and leading the technology charter for the Development and Engineering teams while working with Corporate CISO and Line of Business Group CISO delivering services and solutions as part of the CSS CDO Engineering function.

As a core member of the Architecture Chapter, you will be expected to advocate for the adoption of software architecture and security design patterns among cross-functional teams both within and outside of engineering roles. You will also be expected to act as a mentor and act in capacity as an advisor to the team(s) within the Cybersecurity domain. In this role you will be expected to work as a liaison between the business, engineering and security leaders within Oracle. As we push for digital transformation throughout the organization, you will constantly be expected to think creatively, optimize and harmonize business processes.
 

Core Responsibilities

• Lead the Cybersecurity Strategy, Architecture and Design for the core security domains, Threat Modelling with MITRE ATT&CK and D3FEND, Cyber Resilience with solutions built on top/integrated with OCI, Oracle Cloud Applications & Oracle Enterprise.
• Lead threat modelling, risk assessments and security design reviews for all new/ existing systems, services and products as part of the CSS CDO Engineering and larger CSS Organization globally.
• Liaise with senior executives across multiple business lines to combine business requirements into technology work packages in alignment with the overall CSA & GIS, CISO & Oracle Corporate Security Strategy for Next-Gen Technology Stack.
• Translate security controls and requirements into design standards and patterns for implementation as part of the shift-left approach within the SDLC process.
• Ensure architecture design conformity and compliance with Oracle Corporate Security, Corporate Security Architecture, Global Information Security and global Cyber standards and frameworks for Security & Compliance such as but not limited to : 
  • NIST CSF/ NIST 800-53 / NIST 800-171
  • ISO / IEC 27001/ 27002
  • CIS Controls
  • SOC 2, HIPPA, PCI-DSS, GDPR and / OR FedRAMP (as applicable)
  • SABSA / COBIT / TOGAF
  • Cloud Security Alliance (CSA) & Cloud Control Matrix
  • OWASP
• Develop and maintain technical documentation, including architecture diagrams, design specifications, and system diagrams.
• Continuously evaluate new security technologies and recommend improvements or enhancements.
• Act in capacity as a trusted advisor for executive leadership on security architecture and strategy.
• Provide guidance and mentorship to junior developers.
• Innovation and critical problem solving skills with exceptional communication skills are a must in this role as the Senior Principal Architect would effectively act as a conduit between business executives, functional teams and technology engineering teams.
• The role requires very strong technology thought leadership skills with practical hands on knowledge along with influential skills to create a broader impact within the business and engineering functions.

Required Qualifications
 

• Master’s or Bachelors in Computer Science, specialization in Cybersecurity, Information Systems or a closely related field.
• 10+ years of experience in cyber and information security with explicit focus on security architecture and security solution & products build/ integration.
• Proven ability to build and manage enterprise-distributed and/or cloud-native systems.
• Broad knowledge of Cloud Service Providers and 3rd Party Risk Assessments for enterprises and regulated environments.
• Advanced knowledge in building & implementing Identity, Data and Network Security solutions involving but not limited to Zero-trust security, Identity Aware Proxies, FIDO, DLP, Data
• Privacy and Security for PI /SPI, Data Obfuscation and Tokenization, WAF, SIEM, SOAR, SOC etc.
• Deep experience with MITRE & STRIDE threat modelling for all cloud native applications and being part of Red, Blue and Purple teams.
• Knowledge in Adversarial ML involving the entire tech stack of AI and ML.
• Experience in Data Security including but not limited to vault-less Tokenization, Obfuscation, Encryption with latest Cryptography standards, Data Access & Governance.
• Strong expertise in software design concepts, patterns (e.g., 12-Factor Apps), and tools to create Cloud Native Computing Foundation (CNCF) compliant software with hands-on knowledge of containerization technologies like Docker and Kubernetes.
• Solid understanding of Design Thinking, Test-Driven Development (TDD), BDD, and end-to-end SDLC.
• Experience in DevOps practices, including Kubernetes, CI/CD, Blue-Green, and Canary deployments.
• Experience with Microservice architecture patterns, including API Gateways, Event-Driven & Reactive Architecture, CQRS, and SAGA.
• Familiarity with OOP design principles (SOLID, DRY, KISS, Common Closure, and Module Encapsulation).
• Proven ability to design software systems using various design patterns (Creational, Structural, and Behavioral).
• Strong interpersonal skills and the ability to effectively communicate with business stakeholders.
• Excellent analytical, problem-solving, communication, and leadership skills.

Career Level - IC5

As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges. We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity. 

We know that true innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing an inclusive workforce that promotes opportunities for all.

Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.

We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling +1 888 404 2494 in the United States.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.